Sign-up

ID

VAR-201911-1782


TITLE

Denial of Service Vulnerability in Siemens STEP 7-MicroWIN SMART

Trust: 0.6

sources: CNVD: CNVD-2019-40107

DESCRIPTION

Siemens is a leading global technology company. With innovations in the areas of electrification, automation and digitalization, Siemens provides solutions for customers in the fields of power generation and transmission and distribution, infrastructure, industrial automation, drives and software. Siemens STEP 7-MicroWIN SMART has a denial of service vulnerability that could be exploited by an attacker to cause the server to deny service

Trust: 0.72

sources: CNVD: CNVD-2019-40107 // IVD: df92ce61-c08c-4b2d-abd2-ed0fb9588fd7

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: df92ce61-c08c-4b2d-abd2-ed0fb9588fd7 // CNVD: CNVD-2019-40107

AFFECTED PRODUCTS

vendor:siemensmodel:step 7-microwin smartscope:eqversion:v2.02

Trust: 0.8

sources: IVD: df92ce61-c08c-4b2d-abd2-ed0fb9588fd7 // CNVD: CNVD-2019-40107

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2019-40107
value: MEDIUM

Trust: 0.6

IVD: df92ce61-c08c-4b2d-abd2-ed0fb9588fd7
value: MEDIUM

Trust: 0.2

CNVD: CNVD-2019-40107
severity: MEDIUM
baseScore: 4.9
vectorString: AV:L/AC:L/AU:N/C:N/I:N/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: df92ce61-c08c-4b2d-abd2-ed0fb9588fd7
severity: MEDIUM
baseScore: 4.9
vectorString: AV:L/AC:L/AU:N/C:N/I:N/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

sources: IVD: df92ce61-c08c-4b2d-abd2-ed0fb9588fd7 // CNVD: CNVD-2019-40107

TYPE

Denial of service

Trust: 0.2

sources: IVD: df92ce61-c08c-4b2d-abd2-ed0fb9588fd7

PATCH

title:Denial of Service Vulnerability in Siemens STEP 7-MicroWIN SMARTurl:https://www.cnvd.org.cn/patchinfo/show/183815

Trust: 0.6

sources: CNVD: CNVD-2019-40107

EXTERNAL IDS

db:CNVDid:CNVD-2019-40107

Trust: 0.8

db:IVDid:DF92CE61-C08C-4B2D-ABD2-ED0FB9588FD7

Trust: 0.2

sources: IVD: df92ce61-c08c-4b2d-abd2-ed0fb9588fd7 // CNVD: CNVD-2019-40107

SOURCES

db:IVDid:df92ce61-c08c-4b2d-abd2-ed0fb9588fd7
db:CNVDid:CNVD-2019-40107

LAST UPDATE DATE

2022-05-17T01:36:03.409000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2019-40107date:2019-11-13T00:00:00

SOURCES RELEASE DATE

db:IVDid:df92ce61-c08c-4b2d-abd2-ed0fb9588fd7date:2019-11-12T00:00:00
db:CNVDid:CNVD-2019-40107date:2019-11-17T00:00:00